Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/v7mIL1GrAMvBlA-7NSTAnalQG88.roa
File: v7mIL1GrAMvBlA-7NSTAnalQG88.roa (raw, json)
Hash identifier: kI4Hp3gLz6DMVP+JdOVSzCiF/O70odDkamtRVlSrnzc=
Subject key identifier: BF:B9:88:2F:51:AB:00:CB:C1:94:0F:BB:35:24:C0:9D:A9:50:1B:CF
Certificate issuer: /CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Certificate serial: 0266A052
Authority key identifier: 6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/v7mIL1GrAMvBlA-7NSTAnalQG88.roa
Signing time: Sat 01 Jan 2022 08:03:21 +0000
ROA not before: Sat 01 Jan 2022 08:03:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39368
IP address blocks: 141.11.42.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40280146 (0x266a052)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c4c7986b182ecc36ad74c535beae7299b35ce92
Validity
Not Before: Jan 1 08:03:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bfb9882f51ab00cbc1940fbb3524c09da9501bcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:35:83:72:1f:b9:cf:62:96:f7:9c:65:89:b7:
7d:6d:74:ae:41:94:31:28:37:94:35:1b:85:e3:7b:
38:37:66:57:de:99:c2:58:b8:1e:cd:94:7f:4f:e7:
54:36:c4:6b:b6:cd:af:98:8a:f9:9f:61:e4:59:33:
e8:5e:df:b3:bb:5f:7d:22:fb:5f:11:b2:c2:32:cc:
1c:7f:67:f2:03:ef:6a:76:d1:de:42:a2:46:6d:e2:
f8:34:5c:31:8b:46:87:e2:63:b4:2e:1d:64:1c:c3:
69:76:93:05:46:c1:cb:ec:98:30:bb:b6:52:09:d0:
8b:9b:62:64:28:fd:a1:40:9b:78:d7:ec:8b:43:df:
36:1c:56:c0:65:b6:ec:d5:d3:97:c1:ad:84:41:e9:
75:58:b9:ef:13:25:51:3f:2b:8a:19:86:2d:9b:14:
02:7f:00:85:c8:73:04:ac:08:10:50:ae:57:7a:45:
fc:0d:59:dd:b6:b2:65:84:df:87:af:d0:3b:7f:c9:
ea:57:42:7a:9e:ce:dd:97:1f:b6:9e:62:f0:90:5f:
52:74:14:a2:a7:80:c4:a6:0d:13:c9:1e:cb:4b:94:
a5:42:cb:56:47:4f:ab:de:37:c5:74:99:90:6f:12:
f4:da:d5:f4:a6:e0:cf:7f:51:65:9f:6c:69:b2:69:
a1:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:B9:88:2F:51:AB:00:CB:C1:94:0F:BB:35:24:C0:9D:A9:50:1B:CF
X509v3 Authority Key Identifier:
keyid:6C:4C:79:86:B1:82:EC:C3:6A:D7:4C:53:5B:EA:E7:29:9B:35:CE:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bEx5hrGC7MNq10xTW-rnKZs1zpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/v7mIL1GrAMvBlA-7NSTAnalQG88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/c4e5ca-8aa5-4e64-a022-26ca148d07af/1/bEx5hrGC7MNq10xTW-rnKZs1zpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.42.0/24
Signature Algorithm: sha256WithRSAEncryption
12:ee:24:94:51:9d:ae:0c:a1:d5:d4:95:0e:de:aa:11:c0:90:
ab:5b:fd:d3:54:9a:2b:4a:29:4e:29:05:34:0d:1a:49:31:74:
5f:ee:ff:0a:52:4d:09:ab:7e:ad:0d:96:04:7e:d2:bd:f9:59:
42:df:b2:b6:30:24:20:8c:1a:24:d9:b6:90:f7:51:32:cf:39:
0e:25:23:cc:36:02:b7:cb:03:5a:f9:4d:90:e7:df:ef:13:5f:
69:7e:e6:37:e2:98:4d:47:3c:14:89:5a:67:ed:8e:73:4b:2f:
10:0d:d2:b5:a3:4b:9f:56:cd:81:f3:4c:17:78:89:cc:6f:17:
5e:4b:2a:cc:98:6e:41:cc:6a:85:e2:a2:25:f5:60:a2:95:35:
0c:e4:0d:b5:b9:fe:db:06:ad:e1:4e:de:33:fc:93:7e:eb:b7:
f1:ac:0d:bd:5c:27:d5:dc:36:e7:ee:20:93:86:f7:b8:39:2a:
c6:ea:d5:4b:82:82:25:61:d1:df:08:25:39:ce:c5:8b:15:8b:
6a:81:59:56:2e:3b:70:03:77:71:f7:fa:38:a2:e4:0e:40:70:
14:6a:4f:a9:03:37:95:d7:ae:b5:8f:5c:18:61:42:7e:c6:62:
72:ac:75:da:42:2a:23:20:7c:a2:1c:69:e4:5f:79:52:2c:bb:
f9:44:03:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:57 2023 by rpki-client on console.sobornost.net